CVE-2024-37371

critical

Published 2024-09-03 · Modified 2025-02-20

CVSS v3

9.1

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CVSS v2

—

VIR risk

9.1

Description

Important: mysql security update

Predictions

Exploit likelihood

94%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2025-1671.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2024-6166.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2024-5312.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2294677

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2024:5312

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2025-1673.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339305

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339304

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339300

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339299

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339295

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339293

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339291

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339284

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339281

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339277

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339275

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339271

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339270

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339266

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339259

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339252

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339247

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339243

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339238

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339236

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339231

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339226

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339221

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339220

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2339218

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2331191

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318927

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318926

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318925

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318923

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318922

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318914

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318905

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318900

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318897

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318886

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318885

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318884

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318883

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318882

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318876

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318874

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318873

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318870

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318858

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2318857

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2301888

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2294676

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2294581

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2025:1673

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2025:1671

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2024-37371

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2024-37371.html

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2025:1673

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2024:5312

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://web.mit.edu/kerberos/www/advisories/

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://github.com/krb5/krb5/commit/55fbf435edbe2e92dd8101669b1ce7144bc96fef

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2025:1671

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2024:6166

OS impact

OS	Version	Status	Fixed in
rhel	9	fixed
arch		fixed	`1.21.3-1`
rocky	8	fixed
sles		affected
debian	bookworm	fixed	`1.20.1-2+deb12u2`
debian	bullseye	fixed	`1.18.3-6+deb11u5`
debian	forky	fixed	`1.21.3-1`
debian	sid	fixed	`1.21.3-1`
debian	trixie	fixed	`1.21.3-1`
rocky	9	fixed
debian	11.0	affected
debian	12.0	affected
almalinux	8	fixed	`mecab-ipadic-2.7.0.20070801-17.module_el8.10.0+3965+b415b607.x86_64.rpm`
almalinux	9	fixed	`mysql-server-8.0.41-2.el9_5.x86_64.rpm`

Application impact

Vendor	Product	Versions	Fixed
mit	kerberos_5	`{"endExcluding":"1.21.3"}`	`1.21.3`

References

CWEs

CWE-125

Verify integrity in audit chain (admin only). AS-IS.